Zabbix
Public
Source
xxxxxxxxxxif (array_key_exists('use_proxy_headers', $SSO['SETTINGS']) && (bool) $SSO['SETTINGS']['use_proxy_headers']) {<?php/*** Copyright (C) 2001-2025 Zabbix SIA**** This program is free software: you can redistribute it and/or modify it under the terms of** the GNU Affero General Public License as published by the Free Software Foundation, version 3.**** This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY;** without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.** See the GNU Affero General Public License for more details.**** You should have received a copy of the GNU Affero General Public License along with this program.** If not, see <https://www.gnu.org/licenses/>.**/require_once __DIR__.'/include/config.inc.php';$redirect_to = (new CUrl('index.php'))->setArgument('form', 'default');$request = CSessionHelper::get('request');CSessionHelper::unset(['request']);if (hasRequest('request')) { $request = getRequest('request'); preg_match('/^\/?(?<filename>[a-z0-9_.]+\.php)(\?.*)?$/i', $request, $test_request); if (!array_key_exists('filename', $test_request) || !file_exists('./'.$test_request['filename']) || $test_request['filename'] === basename(__FILE__)) { $request = ''; } if ($request !== '') { $redirect_to->setArgument('request', $request); CSessionHelper::set('request', $request); }}if (CAuthenticationHelper::getPublic(CAuthenticationHelper::SAML_AUTH_ENABLED) == ZBX_AUTH_SAML_DISABLED) { CSessionHelper::unset(['request']); redirect($redirect_to->toString());}use OneLogin\Saml2\Auth;use OneLogin\Saml2\Utils;use SCIM\services\Group as ScimGroup;global $SSO;if (!is_array($SSO)) { $SSO = [];}$SSO += ['SETTINGS' => []];$certs = [ 'SP_KEY' => 'conf/certs/sp.key', 'SP_CERT' => 'conf/certs/sp.crt', 'IDP_CERT' => 'conf/certs/idp.crt'];$certs = array_merge($certs, array_intersect_key($SSO, $certs));$certs = array_filter($certs, 'is_readable');$certs = array_map('file_get_contents', $certs);